I have some question about user ACS for query AD. User-id that ACS use for query AD have to be unlock and never expire use-id ? If user-id is locked, ACS still can query as normally? Thank you for sharing.
No the account that connects to ACS to AD is only there to join the domain (create the computer account) if the account is locked it will still be able to authenticate users successfully. However, if the services are ever disrupted or the AD configuration is removed and then re-added then the ability to join the domain will fail.
Wow, i should have caught that and assumed this was for 5.x. So ACS 4.2 operates differently, it has to be installed on a machine that is joined to your domain. ACS for windows has to run on a server that is a part of your domain or the remote agent has to run to on a machine that is a member of your domain, once the machine is joined to the domain then it should work fine. If you delete the account from AD or you decide to leave the domain through the workstation itself then you will have to provide the domain admin credentials again in order to join one more time.
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...